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DEVICE AND METHOD FOR SECURING 
INFORMATION ASSOCIATED WITH A SUBSCRIBER IN 
A COMMUNICATION APPARATUS 

FIELD OF THE INVENTION 

5 The present invention relates to a device, used in a communication apparatus, 

such as telephone, mobile phone, PDA, and other portable communication apparatus; 
more particularly, a device for securing information associated with a subscriber. 

BACKGROUND OF THE INVENTION 

There are some mobile phones, PDA, and other portable communication 
10 apparatus with storage functions capable of storing the personal private information 
such as address book and schedule. In order to prevent another person from using the 
communication apparatus and further, grabbing the private information stored in the 
communication apparatus, the communication apparatus usually needs more securing 
function to secure the private information against grabbing. 

Taking the present mobile phone as an example, the user generally needs to 
insert the Subscriber Identity Module (SIM) card to start the communicating function 
of the mobile phone. The SIM card usually has the function of generating a cipher 
key. The calculating algorithm in the SIM card for generating the cipher key can be 
Hash-based Message Authentication Code (HMAC), GSM- A3, GSM-A8. It is very 
difficult to crack the calculating algorithm. Consequently, the SIM card is the most 
popular securing system. There are two method of securing the private information 
associated with the subscriber. One is to lock the SIM card by a password that is 
inputted by the users, and the other is to lock the mobile phone by a password. 

The first method according to the prior art takes advantage of the SIM card to 
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secure private information associated with the subscriber. However, the first method 
according to the prior art only secures private information that stored in the SIM card, 
without securing the information stored in the mobile phone. As a result, when a user 
loses his mobile phone, the other person can use this mobile phone by another SIM 
5 card, even grab the information stored in the phone. 

The second method according to the prior art takes advantage of the password to 
lock the mobile phone. When a user loses his mobile phone, the other person needs 
to input the password to unlock this mobile phone even though the other person has a 
SIM card. By this way, it can resolve the drawback of the first method according to 
10 the prior art. Nevertheless, if many persons want to use the same mobile phone, it 
needs another system to verify the different IDs and their corresponding passwords. 
This results in the more complicated system and high cost. 

Besides, the safety of the second method according to the prior art depends on 
the circuit design of mobile phone. Generally speaking, the circuit design of mobile 
15 phone is not good enough to take severe precautions against the cracker. 

SUMMARY OF THE INVENTION 

It is therefore a primary objective of the present invention to provide a device 
for securing private information associated with the subscriber in a communication 
apparatus. 

20 The present provides a device, used in a communication apparatus, secures the 

information associated with a subscriber. The communication apparatus comprises a 
cipher-key generating module for generating a cipher key. The device comprises a 
storage module, a cipher key acquiring module, an encrypting module and a 
decrypting module. The information associated with the subscriber is stored in the 

25 storage module. The cipher-key acquiring module transmits an input to the cipher- 
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key generating module, and then receives the cipher key generated by the cipher-key 
generating module in response to the input. The encrypting module retrieves the 
cipher key through the cipher-key acquiring module, retrieves the information 
associated the subscriber from the storage module, and encrypts the information 
5 associated with the subscriber using the cipher key to generate encrypted information. 
The encrypted information is stored in the storage module and replaces the 
information associated with the subscriber stored in the storage module. The 
decrypting module retrieves the cipher key through the cipher-key acquiring module, 
retrieves the encrypted information from the storage module, and decrypts the 

10 encrypted information using the cipher key to recover the information associated with 
the subscriber when the information associated with the subscriber needs to be used. 
When the decrypting module retrieves the cipher key through the cipher-key 
acquiring module, the cipher-key acquiring module transmits the input once more to 
the cipher-key generating module, and then receives the cipher key generated once 

1 5 more by the cipher-key generating module in response to the input. 

It is am advantage of the present invention that the communication apparatus 
comprises a cipher-key generating module, such as subscriber information module 
card, SIM card. The device retrieves the cipher key through the cipher-key generating 
module to encrypt or decrypt the information associated with the subscriber; 
20 therefore, secures the information associated with a subscriber. 

The objective of the present invention will no doubt become obvious to those of 
ordinary skill in the art after reading the following detailed description of the 
preferred embodiment, which is illustrated in the various figures and drawings. 

BRIEF DESCRIPTION OF THE APPENDED DRAWINGS 

25 FIG. 1 is a schematic diagram showing a secure advice in a communication 

apparatus according to the preferred embodiment of the present invention, and 
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showing the relationship between the secure device and the communication apparatus. 



FIG. 2 is a flowchart illustrating the securing procedure according to the 
preferred embodiment of the present invention. 

FIG. 3 is a schematic diagram showing a secure advice in a communication 
5 apparatus according to the second embodiment of the present invention, and showing 
the relationship between the secure device and the communication apparatus. 

FIG. 4 is a flowchart illustrating the securing procedure according to the second 
embodiment of the present invention. 

DETAILED DESCRIPTION OF THE INVENTION 

10 Hereinafter, embodiments of the present invention will be explained with 

reference to the attached drawings. A device according to an embodiment of the 
present invention carries out securing private information associated with the 
subscriber in a communication apparatus. 

Please referring to FIG. 1, FIG. 1 is a schematic diagram showing a secure 
15 advice 10 in a communication apparatus 1 according to the preferred embodiment of 
the present invention. The secure advice 10 is used in the communication apparatus 
for securing the personal private information in the communication apparatus 1 . The 
communication apparatus 1 comprises a cipher-key generating module 12 for 
generating a cipher key. 

20 The secure advice 10 comprises a storage module 102, a cipher-key acquiring 

module 104, an encrypting module 106 and a decrypting module 108. The 
information associated with the subscriber is stored in the storage module 102. The 
cipher-key acquiring module 104 transmits an input to the cipher-key generating 
module 12. The input is a hardware serial number, which is stored in the 
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communication apparatus 1. The serial number can be International Mobile 
Equipment Identity (IMEI) for example. When the cipher-key generating module 12 
receives the input, it will response to the input and generate a cipher key. 

The cipher-key generating module 12 according to the embodiment of the 
5 present invention has a predeteraiined algorithm. The predetemiined algorithm 122 is 
illustrated in FIG. 1. The input is applied to the predetermined algorithm 122 to 
generate the cipher key. 

The cipher-key generating module 12 can be a Subscriber Identity Module (SEM) 
card. The predetermined algorithm 122 can be Hash-based Message Authentication 
1 0 Code (HMAC), GSM- A3, or GSM-A8. 

The other method for generating the cipher key can work without the 
predetermined algorithm 122. The cipher-key generating module 12 previously stores 
a subscriber code such as International Mobile Subscriber Identity (IMSI). The 
cipher-key generating module 12 transmits the subscriber code as the cipher key in 
15 response to the input. 

The encrypting module 106 retrieves the cipher key through the cipher-key 
acquiring module 104, and retrieves the information associated the subscriber from 
the storage module 102. Afterwards, the encrypting module 106 encrypts the 
information associated with the subscriber by the cipher key to generate an encrypted 
20 information. After the encrypted information is generated, the encrypted information 
is stored in the storage module 102, and replaces the information associated with the 
subscriber stored in the storage module 102. As shown in FIG. 1, the encrypting 
module 106 is driven by the control signal fi-om the communication apparatus 1 and 
then encrypts the information associated with the subscriber in practical application. 

25 Furthermore, as information associated with the subscriber needs to be used, the 
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decrypting module 108 retrieves the cipher key through the cipher-key acquiring 
module 104, retrieves the encrypted information from the storage module 102, and 
decrypts the encrypted information with the cipher key to recover the information 
associated with the subscriber. When the decrypting module 108 retrieves the cipher 
5 key through the cipher-key acquiring module 104, the cipher-key acquiring module 
104 transmits the input once more to the cipher-key generating module 12, and then 
receives the cipher key generated once more by the cipher-key generating module 12 
in response to the input. As shown in FIG. 1, the encrypting module 108 is driven by 
the control signal from the communication apparatus 1 and then decrypts the 
10 information associated with the subscriber in practical application. 

The encrypting module 106 and the decrypting module 108 are implemented in 
a same module in practical application. 

While the invention has been described in the preferred embodiments, it is 
obvious that the cipher key is essential for the decrypting module 108 to decrypt the 

15 encrypted information associated with the subscriber. As the cipher key is not stored 
in the communication apparatus 1 and the secure advice 10, it is vitally important to 
receive the cipher key by the cipher-key generating module 12, such as SIM card. 
Therefore, if a user loses the communication apparatus 1, it is very hard for the other 
person to decrypt the encrypted information associated with the original subscriber. 

20 With the high securing safety of the cipher-key generating module 12, SIM card for 
example, the secure advice 10 according to the preferred embodiment of the present 
invention can provide adequate security. Furthermore, the design of the secure advice 
10 is easier than the prior art and the communication apparatus 1 does not need other 
complicated elements, and hence the manufacturing cost is lower. 

25 If other people want to use the same communication apparatus 1, it is easy to 

secure the encrypted information associated with the subscriber by using their own 
cipher-key generating module 12, SIM card for example. One person can not decrypt 
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the encrypted information associated with the other subscriber. So the present 
invention provides a cheaper and uncompUcated system to secure the encrypted 
information associated with the different subscribers. 



Please refer to FIG. 2. FIG. 2 is a flowchart illustrating the securing procedure 
5 according to the preferred embodiment of the present invention. The foUowings is 
the securing procedure of the secure advice 10 according to the preferred 
embodiment of the present invention. The securing procedure, performed in a 
communication apparatus 1, secures information associated with a subscriber. The 
communication apparatus 1 comprises a cipher-key generating module 12 for 
10 generating a cipher key. The procedure comprises the following steps: 

S20: transmitting an input to the cipher-key generating module 12; 

S21: receiving the cipher key generated by the cipher-key generating module 12 
in response to the input; 

S22: encrypting the information associated with the subscriber by using the 
15 cipher key, and generating the encrypted information; 

S23: determining weather the information associated with the subscriber is 
necessary; if the answer in step S23 is YES, go to step S24; 

S24: transmitting the input once more to the cipher-key generating module 12; 

S25: receiving the cipher key generated once more by the cipher-key generating 
20 module 12 in response to the input; 

S26: decrypting the encrypted information by using the cipher key, and 
recovering the information associated with the subscriber. 
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According to the second embodiment of the present invention, the input 
transmitted from the cipher-key acquiring module to the cipher-key generating 
module is a random input in order to seciu-e the information associated with the 
subscriber emphatically. Hereinafter, the second embodiment of the present invention 
5 will be explained with reference to the attached drawings. 

Referring FIG. 3, FIG. 3 is a schematic diagram showing a secure advice 30 in a 
communication apparatus 3 according to the second embodiment of the present 
invention. The secure advice 30 is used in the conununication apparatus 3 for 
securing the personal private information in the communication apparatus 3. The 
10 communication apparatus 3 comprises a cipher-key generating module 32 for 
generating a cipher key. 

The secure advice 30 comprises a storage module 302, a random-input 
generating module 303, a cipher-key acquiring module 304, an encrypting module 
306, and a decrypting module 308. The infomiation associated with the subscriber is 
15 stored in the storage module 302. The random-input generating module 303 generates 
a random input. The cipher-key acquiring module 304 receives the random inputs 
from the random-input generating module 303 and transmits the random input to the 
cipher-key generating module 32. After receiving the random inputs, the cipher-key 
generating module 32 generates the cipher key in response to the random input. 

20 The cipher-key generating module 32 according to the embodiment of the 

present invention has a predetermined algorithm. The predetermined algorithm 322 is 
illustrated in FIG. 3. The random input is applied into the algorithm 322 to generate 
the cipher key. 

The cipher-key generating module 32 according to the embodiment of the 
25 present invention is a Subscriber Identity Module (SIM) card. The predetermined 
calculating algorithm 322 can be Hash-based Message Authentication Code (HMAC), 
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GSM-A3,orGSM-A8. 

The encrypting module 306 retrieves the cipher key through the cipher-key 
acquiring module 304, and retrieves the information associated the subscriber from 
the storage module 302. Afterward the encrypting module 306 encrypts the 
5 information associated with the subscriber by the cipher key to generate the 
encrypted information. Wherein after the encrypted information is generated, the 
encrypted information is stored in the storage module 302 with the random input, and 
replaces the information associated with the subscriber stored in the storage module 
302. As shown in FIG. 3, the encrypting module 306 is driven by the control signal 
10 from the communication apparatus 3 and then encrypts the information associated 
with the subscriber. 

Furthermore, as information associated with the subscriber needs to be used, the 
decrypting module 308 retrieves the cipher key through the cipher-key acquiring 
module 304, retrieves the encrypted information from the storage module 302, and 

15 decrypts the encrypted information with the cipher key to recover the information 
associated with the subscriber. When the decrypting module 308 retrieves the cipher 
key through the cipher-key acquiring module 304, the cipher-key acquiring module 
304 retrieves the random input from the cipher-key generating module 32, transmits 
the random input once more to the cipher-key generating module 32, and then 

20 receives the cipher key generated once more by the cipherykey generating module 32 
in response to the random input. As shown in FIG. 3, the encrypting module 108 is 
driven by the control signal from the communication apparatus 3 and then decrypts 
the information associated with the subscriber. 

The encrypting module 306 and the decrypting module 308 are implemented in 
25 a same module in practical application. 

While the invention has. been described in the preferred embodiments, it is 
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obvious that it will strengthen the security of the information with the random input 
generated by the random-input generating module. 

Please refer to FIG. 4. FIG. 4 is a flowchart illustrating the securing procedure 
according to the second embodiment of the present invention. The following 
5 illustrates the securing procedure of the secure advice 30 according to the second 
embodiment of the present invention. The securing procedure is implemented in a 
communication apparatus 3 for securing information associated with a subscriber. 
The communication apparatus 3 comprises a cipher-key generating module 32 for 
generating a cipher key. The procedure comprises the following steps: 

10 S40: generating a random input; 

S41 : transmitting the random input to the cipher-key generating module 32; 

S42: receiving the cipher key generated by the cipher-key generating module 32 
in response to the random input; 

S43: encrypting the information associated with the subscriber by using the 
15 cipher key, and generating the encrypted information;S44: determining weather the 
information associated with the subscriber is necessary; if the answer is YES, go to 
step S45. 

S45: transmitting the random input once more to the cipher-key generating 
module 32; 

20 S46: receiving the cipher key generated once more by the cipher-key generating 

module 32 in response to the random input; 

S47: decrypting the encrypted information by using the cipher key, and 
recovering the information associated with the subscriber. 
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While the invention has been described in several preferred embodiments, it is 
understood that the words that have been used are words of description rather than 
words of limitation and that changes within the purview of the appended claims may 
be made without departing from the scope and spirit of the invention in its broader 
aspect. 
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